SUSE®, a pioneer in innovative, open and secure enterprise-grade solutions, announced an integration between SUSE Security and Microsoft Sentinel, a cloud-native security information and event management (SIEM) solution.
The integration, enhanced by the generative AI capabilities of Microsoft Security Copilot, empowers joint customers with a unified security approach across hybrid IT environments.
Robust security solution
“This new integration is a robust security solution for any organisation running cloud native workloads on Microsoft Azure and is a great example of how AI is being used to advance enterprise cybersecurity strategies,” said Laurent Mechain, Global Head of Cloud at SUSE.
“We’re excited to deepen our existing work with Microsoft and reinforce our commitment to powering open, secure innovation.”
Cybersecurity landscape
“In a cybersecurity landscape that is growing increasingly complex, it's crucial that organisations have the right tools to quickly identify and mitigate security threats,” said David Houlding, Director, Global Healthcare Security & Compliance Strategy at Microsoft.
“Collaborating with SUSE will help our mutual customers streamline their security operations and, ultimately, better protect against threats.”
Centralised security dashboard
New integration helps address that challenge with a centralised security dashboard
Managing security posture across different platforms and environments, especially amid an increasing volume and sophistication of security threats, is a challenge for many enterprises now.
This new integration helps address that challenge with a centralised security dashboard, offering customers broader visibility of security threats across environments and the ability to respond to them with automated actions.
Data from SUSE Security
Microsoft Sentinel raises an alert based on the data and autonomously quarantines the node to prevent any spread while waiting for a human review, significantly accelerating the response time.
With this new integration, data from SUSE Security events is funnelled directly into Microsoft Sentinel.
SUSE Security data with other data sources
Microsoft Security Copilot can also correlate SUSE Security data with other data sources
Microsoft Security Copilot then analyses the data and shares AI-driven recommendations for threat mitigation, giving customers the ability to proactively address potential threats.
Microsoft Security Copilot can also correlate SUSE Security data with other data sources within Sentinel to identify patterns and anomalies that could indicate a sophisticated attack.
Benefits of integration
This integration provides the following benefits:
- Improved Visibility: bringing all signals from SUSE Security together in Sentinel provides a comprehensive view of security threats across hybrid IT environments, eliminating blind spots.
- Faster Threat Response: AI-driven recommendations from Security Copilot enable proactive threat mitigation and faster incident response.
- Enhanced Threat Detection: Security Copilot correlates SUSE Security data with other data sources within Sentinel to identify complex and sophisticated attacks that might otherwise go unnoticed.
- Streamlined Security Operations: The integration simplifies security management by centralising data and providing AI-powered insights.
- Stronger Security Posture: Combining SUSE's Kubernetes security with Microsoft's security tools creates a robust security solution.
AI-driven insights and protection
SUSE Security offers SUSE Rancher Prime, a best-in-class enterprise container management platform, that will manage the Kubernetes clusters across heterogeneous environments, taking security and compliance into account.
When combined with Microsoft Sentinel and Microsoft Security Copilot, provides comprehensive threat intelligence, AI-driven insights and automated protection.
